Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.

Notices

Welcome to LinuxQuestions.org, a friendly and active Linux Community.

You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!

Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.

If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.

Having a problem logging in? Please visit this page to clear all LQ-related cookies.

Introduction to Linux - A Hands on Guide

This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.

We have 10 box's here, a VPN tunnel to our 2 racks at our ISP, and rather than ssh with key's all over, we want a single login spot. Since I have not used anything like this in the past, I figured OpenLDAP (in theory) would do it, then someone passed by saying look at NIS.

Have I mentioned I haven't done either, looked a bit, then got into the slapd.conf which became quite a bit, so figured I would consult the best group of people out there (flattery never hurt), asking for ideas, or just some feedback.

I have googled, read, etc. but a lot of the stuff on ldap is 2003, etc. so figured someone here would have some newer feedback. As always, thanks.

I already try both, and there is not an easy answer (as always). both have pros and cons you need to think about.

I started with nisplus in Solaris and after a while in linux too.
The major problem I faced with nisplus is when the nisserver crash for any other reason, not related to NIS, let say, a drive failure.
Even with one or two nis-replicas the things are problematic. There are delays when one try to login or access a object which depends on NIS. The things becomes worse if the nis-replicas are rebooted. Complete lock-down !

LDAP is more robust in this aspect. Even with the master database out-of-business, the clients can access the backup databases and even changing objects/properties.
The main problem with LDAP is several services/programs does not have a ldap interface/integration. In this case, you need to handle one or more proprietary/legacy user information database.

The Single Sign On still is a Holly Graal I am looking for, specially in an heterogeneous environment (open source/proprietary platforms).